06-14-2023 03:17 AM
Hi
the expressway's server certificate has been expired last week.
when trying to access the expressway's webpage to upload the new certificate ,the browser certificate error shows,
and if im hitting the advanced button in order to continue, the page gets an error.
tried it with several browsers, but with no luck.
any ideas ?
maybe there is an option to upload the certificate through CLI ?
thanks
Solved! Go to Solution.
06-14-2023 03:24 AM
Login to expressway using WINSCP, make sure you use root credentials and delete the expired certificate pem. Restart the expressway and you will be able to access the webpage.
Then generate the CSR and get the CSR signed by a CA and upload the certificate.
06-14-2023 04:04 AM
As mentioned up, login to expressway using WinSCP as the root credential
Go to persistent folder>certs> delete the server.pem certificate
Restart the Expressway then you will be able to access it
09-02-2024 07:46 AM
I have the same issue. Logging into the webinterface fails, logging in to CLI through the console with admin credentials and root credentials works.
Logging in with winscp fails with both accounts.
Can I remove the certificate from CLI?
06-14-2023 03:24 AM
Login to expressway using WINSCP, make sure you use root credentials and delete the expired certificate pem. Restart the expressway and you will be able to access the webpage.
Then generate the CSR and get the CSR signed by a CA and upload the certificate.
06-14-2023 04:04 AM
As mentioned up, login to expressway using WinSCP as the root credential
Go to persistent folder>certs> delete the server.pem certificate
Restart the Expressway then you will be able to access it
06-14-2023 04:20 AM
works like a charm!
Thanks a lot !
09-02-2024 07:46 AM
I have the same issue. Logging into the webinterface fails, logging in to CLI through the console with admin credentials and root credentials works.
Logging in with winscp fails with both accounts.
Can I remove the certificate from CLI?
09-02-2024 11:30 PM
Yes it can be removed from CLI. When connected as root you can use normal Unix style commands, like ls to list files or rm to remove files or folders if that is what you want. If you do a ls -la persistent/certs/ you will see the content of the folder where the certificate is stored, then you can do a rm ls -la persistent/certs/server.pem to remove the cert.
09-05-2024 07:13 AM
this did not help...
I deleted the server.pem certificate and rebooted the expressway, but I still can't log in to the web gui
09-05-2024 07:57 AM
So then there is something else that is your problem. Have you worked with TAC on this issue?
Silly question, do you have the admin account set to allow Web access?
09-06-2024 01:58 AM
The account has worked before, so yes, the admin user has web access.
To be sure, I created a new admin user in the CLI, with webaccess, but I get the same error when I try to log in:
09-06-2024 02:55 AM
Sounds like you’ll need to reach out to TAC on this.
09-05-2024 11:04 AM - edited 09-05-2024 11:09 AM
@Djeten Your issue isn’t the same as the OP. If I’m not mistaken you have another post on this. Your problem is related too not being able to login, that’s not related to certificates on the Expressway.
Edit: As I remember you have a post on your problem. https://community.cisco.com/t5/unified-communications-infrastructure/expressway-c-can-t-log-in-to-webinterface-anymore/td-p/5162513
This is not related to the problem the OP of this post has. Suggest that you continue your troubleshooting on your post.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide